Fake Google Chrome Sites Distribute ValleyRAT Malware via DLL Hijacking The Hacker [email protected] (The Hacker News)
February 6, 2025

Bogus websites advertising Google Chrome have been used to distribute malicious installers for a remote access trojan called ValleyRAT. The malware, first detected in 2023, is attributed to a threat actor …


Ransomware Extortion Drops to $813.5M in 2024, Down from $1.25B in 2023 The Hacker [email protected] (The Hacker News)
February 6, 2025

Ransomware attacks netted cybercrime groups a total of $813.5 million in 2024, a decline from $1.25 billion in 2023. The total amount extorted during the first half of 2024 stood at …


SparkCat Malware Uses OCR to Extract Crypto Wallet Recovery Phrases from Images The Hacker [email protected] (The Hacker News)
February 6, 2025

A new malware campaign dubbed SparkCat has leveraged a suit of bogus apps on both Apple's and Google's respective app stores to steal victims' mnemonic phrases associated with cryptocurrency wallets.  The …


The Evolving Role of PAM in Cybersecurity Leadership Agendas for 2025 The Hacker [email protected] (The Hacker News)
February 6, 2025

Privileged Access Management (PAM) has emerged as a cornerstone of modern cybersecurity strategies, shifting from a technical necessity to a critical pillar in leadership agendas. With the PAM market projected …


North Korean APT Kimsuky Uses forceCopy Malware to Steal Browser-Stored Credentials The Hacker [email protected] (The Hacker News)
February 6, 2025

The North Korea-linked nation-state hacking group known as Kimsuky has been observed conducting spear-phishing attacks to deliver an information stealer malware named forceCopy, according to new findings from the AhnLab …


Top 3 Ransomware Threats Active in 2025 The Hacker [email protected] (The Hacker News)
February 6, 2025

You arrive at the office, power up your system, and panic sets in. Every file is locked, and every system is frozen. A ransom demand flashes on your screen: "Pay …


Cisco Patches Critical ISE Vulnerabilities Enabling Root CmdExec and PrivEsc The Hacker [email protected] (The Hacker News)
February 6, 2025

Cisco has released updates to address two critical security flaws Identity Services Engine (ISE) that could allow remote attackers to execute arbitrary commands and elevate privileges on susceptible devices. The vulnerabilities …


Cross-Platform JavaScript Stealer Targets Crypto Wallets in New Lazarus Group Campaign The Hacker [email protected] (The Hacker News)
February 5, 2025

The North Korea-linked Lazarus Group has been linked to an active campaign that leverages fake LinkedIn job offers in the cryptocurrency and travel sectors to deliver malware capable of infecting …


Cybercriminals Use Go Resty and Node Fetch in 13 Million Password Spraying Attempts The Hacker [email protected] (The Hacker News)
February 5, 2025

Cybercriminals are increasingly leveraging legitimate HTTP client tools to facilitate account takeover (ATO) attacks on Microsoft 365 environments. Enterprise security company Proofpoint said it observed campaigns using HTTP clients Axios and …


Silent Lynx Using PowerShell, Golang, and C++ Loaders in Multi-Stage Cyberattacks The Hacker [email protected] (The Hacker News)
February 5, 2025

A previously undocumented threat actor known as Silent Lynx has been linked to cyber attacks targeting various entities in Kyrgyzstan and Turkmenistan. "This threat group has previously targeted entities around Eastern …